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Please amend the claims as follows 

1. (Previously Presented) A computerized method for automatically configuring a firewall 
opt*! citing ujtlun an individual computet computing 

deienvtining a zone foi a netwotk address dsnaimealh assigned to a network adaptei 
m the individual compute) and 

associating a seeuiitv pohes lot the /oik with the netwoik adapter, the seeuitts pohc\ 
specifs tng the firew all configuiatjon to protect the mdi\ idual computet , 

wherein the seeuutv pohes is defined hv a pohev tile whieh includes a pohes life 
data structure s toted as an XML {extensible matkup language) document 

w- her em a securm pohev section of the pohes file data strucfuie includes an eimv lui 
each secuutv pohes that i» identified hs a pohev iJcntifici field and is associated with a 
network protocol thai is identified hs a piotoe-ol identifiei Held, 

wherein the secunrv pohev section specifies filters for at least a portion of ports and 
set wees defined hs the netwoik ptotocol and each port and sen tec associated with the 
st-cuiih pohes is identified hs an element idenufiei field, a field containing filter settings, 
and a log indicator field; 

wherein at least one security pohev is included fot a (X P IP network and includes a 
PP1 P {point-to-point amneimg ptotocol) a RiP (routing information protocol ) <i Di R f 
(d\ nature host conftgutation piotocol) an '\RP (address resoluuon protocol) an Idem 
t identification piotocol}, ICMP (internet contiol message protocol ) and \ P\ (virtual private 
networking) ports and a NetBIOS rnetwoik. basic input output wstem) service 

wherein a default setting for a high securits pohev on the ICP/IP network disallows 
ineomins/ netwoik traffic through the PPTP and ICMP potts, allows incoming netwoik traffic 
thiouyh the [IIP, DH( P, \RP and YPN ports, disallows access tlnough the \etBK >S sers ice 
to shated resouices on the mdiMdual compute! and disallow s the tndts idual computer from 
using shared iesouices ot othei eomputeis on the rCP/lP network, whete incoming network 
tuffic that attempts to access the individual computet usmg PP TP and NetBIOS is lodged. 



whereui a zone section of the policv file data stuiuuje includes an enus foj each 
dd'med .iddtess /one and includes an identifiet 5k-ld an addiess paumeteis field that defines 
the /one and an fdenttilej field tor the senium puticx assigned to the /one, 

vthm-tn a default /one ts defimd b\ addicssts that die outside anothci zone. 

wherein the determining and associating is peiformed v\hen the network addiess tot 
the netwoik auaptei chants 

unci em the seeunn pohc\ associated with the ncimnk piotou'l is specific to the 
network protocol; 

wherein the zone is defined by a set of network addresses, which comprises at least 
one address outside the zone: 

wherein the network address dynamically assigned to the network adapter is 
determined by at least one of: 

mapping an adapter registry identifier to an associated network address stored in an 
operating system registry, 

monitoring network traffic at the network adapter and examining a predefined limited 
amount of the network traffic to determine the network address: and 

receiving a network address from a network adapter device driver when the network 
adapter connects to the TCP/IP network 

2. (Original) The computerized method of claim 1 further comprising 

determining the network addiess assigned to the network adapter 

3. (Cancelled) 

4. (Previously Presented) The computerized method of clai m 1, wherein the set of network 
addresses comprises at least one address within the zone. 

5. (Cancelled) 

6. (Original) The computerized method of claim I. further comprising: 

assigning the security policy to the zone. 



7 (Previously Piesented) The computerised method of claim 1 fuithet comprising 

retrieving the policy II Its thai contains definitions for the /one and the security polio, 
and specifies that the security po!ie> is assigned to the ^onc 

H (OriginaB The computerized method of claim 7 further comprising 
ctcatiug the pnhes file from data input by a user 

9. (Original) The computerized method of claim 7 further comprising: 
creating the polie\ file ftom data input bv an adnnmsttator 

10 (PiexiousK Piesented) The comptuen/ed method oi claim ~" further compusmg 

r ect'Ev jn>> data from a predetermined location on the nctwotk thiough the network 

adapter: and 

oi eating the polio, file fiom the data 

) I ( Pie\ jousls Piesented) A stoiage de\ ice storing computer-executable mstuiujons to 
automatical i\ eonftgme a firewall operating v\ithm an indhidua! computes comprising 

determining a zone foi u netwoil- adds ess assigned d\namicail\ to a network aduptei 
in the individual computer 

defining the /one based on a set of netwotl. addiesses including <i{ least one addiess 
outside the zone: and 

associating a sectiift) puiic\ for the /one with the netwoik adapter the secunh policy 
specifving the firewall eonfigmation to protect the rndi\jdual computes, 

wherein the secunts poinA is defined b\ apofie\ file which includes a poinA file 
data struuuie stored as an XML (extensible maikup language) document. 

whet em a st-anto, polios section of the polio Ilk- day stmame includes an en its for 
each secunts polic\ that is identified b\ a pohc\ tdentriiei iield and is associated with a 
network protocol that is identified b\ a piotocol identifier field, 

wheiem the seetirits policy section specifies Filteis ioi at least a portion oi pons and 
semces defined bv the netwoik piotocol, and each port and smiee associated with the 
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secunn policv is identified b\ an element identifier field, a fieitl containing ftltei settings 
and a log indicator field; 

wherem at least one secuut\ pohes is included tor a FCP-'IP netuotk and mdudes a 
Pi' IF (point-to-point tunneling protocol ), si RIP t loutmi: information protocol >, a DHCP 
Uh mimic host configuration protocol), an ARP (address lesolufion piotocol) an I dent 
{identification protocol), 1CMP {internet control message ptotocolUtnu \ P\ (\utual pmate 
TKtwoiktng) poiis. and a NetBIOS {network basic input output s\ stem) semce, 

whet em a default setting foi a htuh secunn polio, on the TCP IP network disallows 
incoming net u oik traffic through the PPTP and K MP pons allows incoming net u oik traffic 
tbiough the RIP, DHCP, \RP and \ P\ ports, disallows access through the NetBIOS sen ice 
to shaied resouices on the individual computer, and disallows the inumdual computes from 
using shaied resouiees of other computers on the I CP fP net \\ oik, wheie incoming nefwoil 
traffic that attempts to access the munidua! compute: using PP1 P and NetBIOS is logged 

whet em a zone section oi the poiiex file data structure includes an entrs for each 
defined address /one and includes an identifier field, an addiess parameters field that defines 
the /one, and an identiilei field foi the seeunts polic\ assigned to the /one, 

whetem a default /one is defined b\ addresses that ate outside another /one, 

wheiein the detei mining and associating is pei formed when the netv\ork addiess for 
the network adapter changes 

wherein the secutm pohc\ associated with the network protocol is specific to the 
network protocol: 

wheiem the network address dvnainrcalh assigned to the network adapter is 
determined by at least one of 

mapping an adaptei remstsv identifier to an associated network addiess stored m an 
operating system registry: 

momtoung netw oik traffic at the netwoik adapter and examining a pi edefined limned 
amount nf the network tiaffic to detetimne the network address, and 

iecet\ mg a network addiess from a network adaptei de\ ice dm ei w hen the network 
adapter connects to the TCP/IP network. 
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12. (Previously Presented) The storage device of claim 1 i stormy further computer-readable 
instruct! ons com pri si ag : 

determining the network address assigned to the network adapter 

Lv (Previously Presented.} The storage device of claim i i storing further computer-readable 
instructions comprising: 

assigning the security policy to the zone. 

14 (Piesioush Presented) The storage de<> ice of clarm if stotmg fuithu computer -loadable 
i a structions comprising : 

term sing the piiiic\ flic that contains definitions foi the zone and the stcuuis polios 
and specifies that the secutm polios is assigned to the -/one 

1^ (Piesioush Presented! fhe storage device of claim 14 stotmg iuither computet -loadable 
i n statcti on s compnsm ii : 

et eating the polios Hie from data input h\ a usei 

1<> (PiomousK Presented) The storage de^ ice oi elum 14 stotmg fuither computer -loadable 
i n struct! on s comprising : 

et eating the polics file fiom data input b\ an admtnistiatoi 

17 (Pioviouslv Piesentcd) 1 he stot age deuce nt claim 14 storing furthei computer- readable 
instructions comprising: 

receiving data from a predetermined location on the network through the network 
adapter; and 

creating the policy file from the data. 

18. (Cancelled) 

1.9. (Previously Presented) The storage device of claim 1 1 storing further computer-readable 
instruct! ons compri si ng : 
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including at least one address within the zone in the set of network addresses, 
20. (Cancelled) 

2! (Piewoush Presented) \ computerized s\ stem composing 
a. processing unit; 

<i memorv coupled to tin. processing unit through a bus 

a network adapter coupled to the processing unit through the bus and further operable 
for coupling to a network; 

a firewall process executed from the memorv b\ the processing unit to protect the 
computerized sweni when ihc network adapter is coupled to a netwoik b\ causma the 
piocessmg unu to iiltci data addressed to the netv\ork adapter accotdtng to a seeunh poiie\ 
and 

a firewall configuration process executed from the memory by the processing unit to 
cause the processing unit to determine a zone for a network address dynamically assigned to 
the network adapter and to associate a firewall security policy for the zone with the network 
adapter; 

wherein the security policy is defined by a policy file which includes a policy file 
data structure stored as an XML, (extensible markup language) document; 

wherein a security policy section of the policy file data statcture includes an entry for 
each security policy that is identified by a policy identifier field and is associated with a 
network protocol that is identified by a protocol identifier field; 

wherein the security policy section specifies filters for at least a portion of ports and 
services defined by the network protocol, and each port and sen-ice associated with the 
security policy is identified by an element identifier field., a field containing filter settings, 
and a log indicator field; 

wherein at least one security policy is included for a TCP/IP network and includes a 
PPT? (point-to-point tunneling protocol), a RIP (routing information protocol)., a DHCP 
(dynamic host configuration protocol), an ARP (address resolution protocol)., an Idem 
(identification protocol), I CM I' (internet control message protocol) and VPN (virtual private 
networking) ports, and a NetBIOS (network basic input/output system) service; 



wherein a default setting for a high security policy on the TCP/IP network disallows 
incoming network traffic through the PPTP and ICM.P ports, allows incoming network traffic 
through the RIP, DHCP, A.RP and VPN ports, disallows access through the NetBIOS service 
to shared resources on the individual computer, and disallows the individual computer from 
using shared resources of other computers on the TCP/IP network, where incoming network 
traffic that attempts to access the individual computer using PPTP and NetBIOS is logged; 

wherein a zone section of the policy file data structure includes an entry for each 
defined address zone and includes an identifier field, an address parameters field that defines 
the zone, and an identifier field for the security policy assigned to the zone: 

wherein a default zone is defined by addresses that are outside another zone,. 

wherein the firewall configuration process is executed by the processing unit when 
the network address for the network adapter changes, 

wherein the security policy associated with the network protocol is specific to the 
network protocol : 

wherein the firewall configuration process further causes the processing unit to define 
the zone based on a set of network addresses comprising at least one address outside the 
zone; 

wherein the network address dynamically assigned to the network adapter is 
determined by at least one of: 

mapping an adapter registry identifier to an associated network address stored in an 
operating system registry; 

monitoring network traffic at the network adapter and examining a predefined limited 
amount of the network traffic to determine the network address, and 

receiving a network address from a network adapter device driver when the network 
adapter connects to the TCP/IP network. 

22. (Cancelled) 



23. (Cancelled) 
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24. (Original) The computerized system of claim 21 wherein the firewall configuration 
process further causes the processing unit to determine the network address of the network 
adapter, 

25. (Cancelled) 

26. (Currently Amended) The compu terized system of claim 21, wherein the set of network 
addresses comprises at least one address within the zone. 

27. (Cancelled) 

28 (Previously Presented) The computerized system of claim 21, wherein the firewall 
configuration process further causes the processing unit to assign the security policy to the 
zone 

29 (PreMUiisK Ptesentui) The compiuenzui system of eiasm 21, whet em the firewall 
confirmation ptoces\s furthei causes the ptocessmg unr? to ietne\e the pohc> file that 
contmis definitions fot the /one and the seem it> pohc-s and specifies that the seeum\ police 

is assigned to the zone. 

i0 (Pie\iousls Ptesented) life comptuen/ed s\s(em of eiaun 2°, uheiein the firewall 
configm ati on piocess further causes the ptocessmg unit to leeeixe data ftom a uses and to 
cteaL, (he pu!a> file hom (he data 

> i < Pre\ loush Ptesented) The compute: i zed system of claim 2°, nlieicm the firewall 
configuration piocess furthei causes the ptocessmg unit to ieeei\e data from an adnnmstuttor 
and to create the policy file from the data. 

32 (Pieuoush Presented^ The computerized s\stem of clarm 29, whciem the tnewall 
configmaiiun process furthei causes the processing mill to recei\ e data front a predetermined 
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iocation on the network through the network adapter and to create the policy file from the 
data. 

33-43. (Cancelled) 



